Single Sign On settings
You can configure Single Sign On settings in the Single Sign On section of SDL Tridion Sites Content Manager configuration.
Procedure
- In the config\ subdirectory of %TRIDION_HOME%, open Tridion.ContentManager.config for editing.
- Navigate to the Single Sign On section.
- Configure the following settings:
Value Description Directory Service Name The name of a Directory Service that contains groups that are mapped to Content Manager Groups. If you set this property to a value, SDL Tridion ignores User Full Name Header and User Name Qualifier. User Full Name Header The full name of the user, made available to the SSO server. The value of this property is ignored if Directory Service Name has a value. User Name Header The user name in the SSO server:
- If you use CA SiteMinder, fill in
SM_USER. - If you use IBM Tivoli Access Manager, fill in
iv-user.
User Name Qualifier A qualifier to identify the single sign-on user with, to prevent conflicts with internal Content Manager users with the same name, much like a domain prefix. A typical value would be SSO. The value of this property is ignored if Directory Service Name has a value. - If you use CA SiteMinder, fill in
- Restart IIS and COM+ to ensure updated settings are used—for performance reasons, the processes that use the MMC Snap-in settings cache them in memory.